Presented by: Security expert Randy Franklin Smith and solution architect Brian Hymer
Figuring out logon sessions is one of the hardest things to do with the Windows security log. How do you figure out how long a user was actually logged in? When did they logon and when did they logoff? When was the system shutdown, asleep or the user away?
On the surface it seems so easy: get the logon event, link it to the logoff event with the logon ID value. Oh if only!
In this webinar, we’ll take a deep dive on logon session auditing to answer your most challenging Windows security log questions. We’ll also take a look at a powerful solution that simplifies logon session auditing.